diff options
Diffstat (limited to 'man/zh_CN/man8')
-rw-r--r-- | man/zh_CN/man8/chgpasswd.8 | 84 | ||||
-rw-r--r-- | man/zh_CN/man8/chpasswd.8 | 70 | ||||
-rw-r--r-- | man/zh_CN/man8/faillog.8 | 10 | ||||
-rw-r--r-- | man/zh_CN/man8/groupadd.8 | 87 | ||||
-rw-r--r-- | man/zh_CN/man8/groupdel.8 | 25 | ||||
-rw-r--r-- | man/zh_CN/man8/groupmems.8 | 25 | ||||
-rw-r--r-- | man/zh_CN/man8/groupmod.8 | 25 | ||||
-rw-r--r-- | man/zh_CN/man8/grpck.8 | 25 | ||||
-rw-r--r-- | man/zh_CN/man8/lastlog.8 | 19 | ||||
-rw-r--r-- | man/zh_CN/man8/logoutd.8 | 8 | ||||
-rw-r--r-- | man/zh_CN/man8/newusers.8 | 237 | ||||
-rw-r--r-- | man/zh_CN/man8/nologin.8 | 8 | ||||
-rw-r--r-- | man/zh_CN/man8/pwck.8 | 41 | ||||
-rw-r--r-- | man/zh_CN/man8/pwconv.8 | 40 | ||||
-rw-r--r-- | man/zh_CN/man8/sulogin.8 | 27 | ||||
-rw-r--r-- | man/zh_CN/man8/useradd.8 | 326 | ||||
-rw-r--r-- | man/zh_CN/man8/userdel.8 | 108 | ||||
-rw-r--r-- | man/zh_CN/man8/usermod.8 | 193 | ||||
-rw-r--r-- | man/zh_CN/man8/vipw.8 | 10 |
19 files changed, 218 insertions, 1150 deletions
diff --git a/man/zh_CN/man8/chgpasswd.8 b/man/zh_CN/man8/chgpasswd.8 index 869433e0..92da2386 100644 --- a/man/zh_CN/man8/chgpasswd.8 +++ b/man/zh_CN/man8/chgpasswd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: chgpasswd .\" Author: Thomas K\(/loczko <kloczek@pld.org.pl> -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "CHGPASSWD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "CHGPASSWD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -87,7 +87,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-sha\-rounds\fR @@ -113,80 +113,6 @@ By default, the number of rounds is defined by the SHA_CRYPT_MIN_ROUNDS and SHA_ The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBENCRYPT_METHOD\fR (string) -.RS 4 -这定义了系统加密密码的默认算法(如果没有在命令行上指定算法)。 -.sp -It can take one of these values: -\fIDES\fR -(default), -\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see -crypt(5) -for recommendations\&. -.sp -Note: this parameter overrides the -\fBMD5_CRYPT_ENAB\fR -variable\&. -.RE -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBMD5_CRYPT_ENAB\fR (boolean) -.RS 4 -Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to -\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to -\fIno\fR -if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is -\fIno\fR\&. -.sp -This variable is superseded by the -\fBENCRYPT_METHOD\fR -variable or by any command line option used to configure the encryption algorithm\&. -.sp -This variable is deprecated\&. You should use -\fBENCRYPT_METHOD\fR\&. -.RE -.PP -\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number) -.RS 4 -When -\fBENCRYPT_METHOD\fR -is set to -\fISHA256\fR -or -\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&. -.sp -使用很多轮转,会让暴力破解更加困难。但是需要注意,认证用户时也会需要更多的 CPU 资源。 -.sp -If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&. -.sp -值必须在 1000 \- 999,999,999 之间。 -.sp -If only one of the -\fBSHA_CRYPT_MIN_ROUNDS\fR -or -\fBSHA_CRYPT_MAX_ROUNDS\fR -values is set, then this value will be used\&. -.sp -If -\fBSHA_CRYPT_MIN_ROUNDS\fR -> -\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&. -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/chpasswd.8 b/man/zh_CN/man8/chpasswd.8 index 3de93bb9..77592c01 100644 --- a/man/zh_CN/man8/chpasswd.8 +++ b/man/zh_CN/man8/chpasswd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: chpasswd .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "CHPASSWD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "CHPASSWD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -103,7 +103,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-sha\-rounds\fR\ \&\fIROUNDS\fR @@ -131,65 +131,7 @@ variables in The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBENCRYPT_METHOD\fR (string) -.RS 4 -这定义了系统加密密码的默认算法(如果没有在命令行上指定算法)。 -.sp -It can take one of these values: -\fIDES\fR -(default), -\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see -crypt(5) -for recommendations\&. -.sp -Note: this parameter overrides the -\fBMD5_CRYPT_ENAB\fR -variable\&. -.RE -.PP -\fBMD5_CRYPT_ENAB\fR (boolean) -.RS 4 -Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to -\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to -\fIno\fR -if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is -\fIno\fR\&. -.sp -This variable is superseded by the -\fBENCRYPT_METHOD\fR -variable or by any command line option used to configure the encryption algorithm\&. -.sp -This variable is deprecated\&. You should use -\fBENCRYPT_METHOD\fR\&. -.RE -.PP -\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number) -.RS 4 -When -\fBENCRYPT_METHOD\fR -is set to -\fISHA256\fR -or -\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&. -.sp -使用很多轮转,会让暴力破解更加困难。但是需要注意,认证用户时也会需要更多的 CPU 资源。 -.sp -If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&. -.sp -值必须在 1000 \- 999,999,999 之间。 -.sp -If only one of the -\fBSHA_CRYPT_MIN_ROUNDS\fR -or -\fBSHA_CRYPT_MAX_ROUNDS\fR -values is set, then this value will be used\&. -.sp -If -\fBSHA_CRYPT_MIN_ROUNDS\fR -> -\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&. -.RE + .SH "文件" .PP /etc/passwd diff --git a/man/zh_CN/man8/faillog.8 b/man/zh_CN/man8/faillog.8 index 58075793..6075da05 100644 --- a/man/zh_CN/man8/faillog.8 +++ b/man/zh_CN/man8/faillog.8 @@ -1,13 +1,13 @@ '\" t .\" Title: faillog .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "FAILLOG" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "FAILLOG" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -113,7 +113,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-t\fR, \fB\-\-time\fR\ \&\fIDAYS\fR diff --git a/man/zh_CN/man8/groupadd.8 b/man/zh_CN/man8/groupadd.8 index 89a08c50..5d5c538a 100644 --- a/man/zh_CN/man8/groupadd.8 +++ b/man/zh_CN/man8/groupadd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: groupadd .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "GROUPADD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "GROUPADD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -31,12 +31,16 @@ groupadd \- 创建一个新组 .SH "大纲" .HP \w'\fBgroupadd\fR\ 'u -\fBgroupadd\fR [\fI选项\fR] \fIgroup\fR +\fBgroupadd\fR [\fI选项\fR] \fINEWGROUP\fR .SH "描述" .PP The \fBgroupadd\fR command creates a new group account using the values specified on the command line plus the default values from the system\&. The new group will be entered into the system files as needed\&. +.PP +组名必须以小写字母或者下划线开头,跟随小写字母、下划线或短横线。可以由美元符号结束。用正则表达式就是:[a\-z_][a\-z0\-9_\-]*[$]? +.PP +Groupnames may only be up to 32 characters long\&. .SH "选项" .PP The options which apply to the @@ -53,7 +57,9 @@ is turned off)\&. .PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGID\fR .RS 4 -The numerical value of the group\*(Aqs ID\&. This value must be unique, unless the +The numerical value of the group\*(Aqs ID\&. +\fIGID\fR +must be unique, unless the \fB\-o\fR option is used\&. The value must be non\-negative\&. The default is to use the smallest ID value greater than or equal to \fBGID_MIN\fR @@ -90,13 +96,21 @@ doesn\*(Aqt work yet\&. .PP \fB\-o\fR, \fB\-\-non\-unique\fR .RS 4 -此选项允许添加一个使用非唯一 GID 的组。 +permits the creation of a group with an already used numerical ID\&. As a result, for this +\fIGID\fR, the mapping towards group +\fINEWGROUP\fR +may not be unique\&. .RE .PP \fB\-p\fR, \fB\-\-password\fR\ \&\fIPASSWORD\fR .RS 4 -The encrypted password, as returned by -\fBcrypt\fR(3)\&. The default is to disable the password\&. +defines an initial password for the group account\&. PASSWORD is expected to be encrypted, as returned by +\fBcrypt \fR(3)\&. +.sp +Without this option, the group account will be locked and with no password defined, i\&.e\&. a single exclamation mark in the respective field of ths system account file +/etc/group +or +/etc/gshadow\&. .sp \fBNote:\fR This option is not recommended because the password (or encrypted password) will be visible by users listing the processes\&. @@ -121,16 +135,13 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR .RS 4 -Apply changes in the -\fIPREFIX_DIR\fR -directory and use the configuration files from the -\fIPREFIX_DIR\fR -directory\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. +Apply changes to configuration files under the root filesystem found under the directory +\fIPREFIX_DIR\fR\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. .RE .PP \fB\-U\fR, \fB\-\-users\fR @@ -151,48 +162,6 @@ variable in The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBGID_MAX\fR (number), \fBGID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of regular groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBGID_MIN\fR -(resp\&. -\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of system groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_GID_MIN\fR -(resp\&. -\fBSYS_GID_MAX\fR) is 101 (resp\&. -\fBGID_MIN\fR\-1)\&. -.RE .SH "文件" .PP /etc/group @@ -211,10 +180,6 @@ Shadow 密码套件配置。 .RE .SH "CAVEATS" .PP -组名必须以小写字母或者下划线开头,跟随小写字母、下划线或短横线。可以由美元符号结束。用正则表达式就是:[a\-z_][a\-z0\-9_\-]*[$]? -.PP -Groupnames may only be up to 16 characters long\&. -.PP You may not add a NIS or LDAP group\&. This must be performed on the corresponding server\&. .PP If the groupname already exists in an external group database such as NIS or LDAP, diff --git a/man/zh_CN/man8/groupdel.8 b/man/zh_CN/man8/groupdel.8 index 3b3e0777..0b39de4b 100644 --- a/man/zh_CN/man8/groupdel.8 +++ b/man/zh_CN/man8/groupdel.8 @@ -1,13 +1,13 @@ '\" t .\" Title: groupdel .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "GROUPDEL" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "GROUPDEL" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -60,7 +60,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR @@ -81,21 +81,6 @@ directory\&. This option does not chroot and is intended for preparing a cross\- The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/groupmems.8 b/man/zh_CN/man8/groupmems.8 index e94fc5da..cbebe7d7 100644 --- a/man/zh_CN/man8/groupmems.8 +++ b/man/zh_CN/man8/groupmems.8 @@ -1,13 +1,13 @@ '\" t .\" Title: groupmems .\" Author: George Kraft, IV -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "GROUPMEMS" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "GROUPMEMS" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -107,7 +107,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .SH "SETUP" .PP @@ -142,21 +142,6 @@ utility to manage their own group membership list\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/groupmod.8 b/man/zh_CN/man8/groupmod.8 index 82c95beb..ad250d85 100644 --- a/man/zh_CN/man8/groupmod.8 +++ b/man/zh_CN/man8/groupmod.8 @@ -1,13 +1,13 @@ '\" t .\" Title: groupmod .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "GROUPMOD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "GROUPMOD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -117,7 +117,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR @@ -147,21 +147,6 @@ variable in The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/grpck.8 b/man/zh_CN/man8/grpck.8 index b3e80b1b..e5807c53 100644 --- a/man/zh_CN/man8/grpck.8 +++ b/man/zh_CN/man8/grpck.8 @@ -1,13 +1,13 @@ '\" t .\" Title: grpck .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "GRPCK" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "GRPCK" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -148,7 +148,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-sort\fR @@ -179,21 +179,6 @@ and \fIshadow\fR parameters\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/lastlog.8 b/man/zh_CN/man8/lastlog.8 index 175e9237..99f801c4 100644 --- a/man/zh_CN/man8/lastlog.8 +++ b/man/zh_CN/man8/lastlog.8 @@ -1,13 +1,13 @@ '\" t .\" Title: lastlog .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "LASTLOG" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "LASTLOG" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -73,7 +73,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-S\fR, \fB\-\-set\fR @@ -117,15 +117,6 @@ users with a high UID)\&. You can display its real size with "\fBls \-s\fR"\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBLASTLOG_UID_MAX\fR (number) -.RS 4 -Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&. -.sp -No -\fBLASTLOG_UID_MAX\fR -option present in the configuration means that there is no user ID limit for writing lastlog entries\&. -.RE .SH "文件" .PP /var/log/lastlog diff --git a/man/zh_CN/man8/logoutd.8 b/man/zh_CN/man8/logoutd.8 index 8f21b9ce..616ded23 100644 --- a/man/zh_CN/man8/logoutd.8 +++ b/man/zh_CN/man8/logoutd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: logoutd .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "LOGOUTD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "LOGOUTD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff --git a/man/zh_CN/man8/newusers.8 b/man/zh_CN/man8/newusers.8 index 25c2c21b..a1ed3da6 100644 --- a/man/zh_CN/man8/newusers.8 +++ b/man/zh_CN/man8/newusers.8 @@ -1,13 +1,13 @@ '\" t .\" Title: newusers .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "NEWUSERS" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "NEWUSERS" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -161,7 +161,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-sha\-rounds\fR @@ -187,228 +187,11 @@ By default, the number of rounds is defined by the SHA_CRYPT_MIN_ROUNDS and SHA_ The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBENCRYPT_METHOD\fR (string) -.RS 4 -这定义了系统加密密码的默认算法(如果没有在命令行上指定算法)。 -.sp -It can take one of these values: -\fIDES\fR -(default), -\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see -crypt(5) -for recommendations\&. -.sp -Note: this parameter overrides the -\fBMD5_CRYPT_ENAB\fR -variable\&. -.RE -.PP -\fBGID_MAX\fR (number), \fBGID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of regular groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBGID_MIN\fR -(resp\&. -\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBHOME_MODE\fR (number) -.RS 4 -The mode for new home directories\&. If not specified, the -\fBUMASK\fR -is used to create the mode\&. -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this to set the mode of the home directory they create\&. -.RE -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBMD5_CRYPT_ENAB\fR (boolean) -.RS 4 -Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to -\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to -\fIno\fR -if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is -\fIno\fR\&. -.sp -This variable is superseded by the -\fBENCRYPT_METHOD\fR -variable or by any command line option used to configure the encryption algorithm\&. -.sp -This variable is deprecated\&. You should use -\fBENCRYPT_METHOD\fR\&. -.RE -.PP -\fBPASS_MAX_DAYS\fR (number) -.RS 4 -一个密码可以使用的最大天数。如果密码比这旧,将会强迫更改密码。如果不指定,就假定为 \-1,这会禁用这个限制。 -.RE -.PP -\fBPASS_MIN_DAYS\fR (number) -.RS 4 -The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&. -.RE -.PP -\fBPASS_WARN_AGE\fR (number) -.RS 4 -密码过期之前给出警告的天数。0 表示只有只在过期的当天警告,负值表示不警告。如果没有指定,不会给警告。 -.RE -.PP -\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number) -.RS 4 -When -\fBENCRYPT_METHOD\fR -is set to -\fISHA256\fR -or -\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&. -.sp -使用很多轮转,会让暴力破解更加困难。但是需要注意,认证用户时也会需要更多的 CPU 资源。 -.sp -If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&. -.sp -值必须在 1000 \- 999,999,999 之间。 -.sp -If only one of the -\fBSHA_CRYPT_MIN_ROUNDS\fR -or -\fBSHA_CRYPT_MAX_ROUNDS\fR -values is set, then this value will be used\&. -.sp -If -\fBSHA_CRYPT_MIN_ROUNDS\fR -> -\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&. -.RE -.PP -\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate group IDs) allocate -\fBSUB_GID_COUNT\fR -unused group IDs from the range -\fBSUB_GID_MIN\fR -to -\fBSUB_GID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_GID_MIN\fR, -\fBSUB_GID_MAX\fR, -\fBSUB_GID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate user IDs) allocate -\fBSUB_UID_COUNT\fR -unused user IDs from the range -\fBSUB_UID_MIN\fR -to -\fBSUB_UID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_UID_MIN\fR, -\fBSUB_UID_MAX\fR, -\fBSUB_UID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of system groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_GID_MIN\fR -(resp\&. -\fBSYS_GID_MAX\fR) is 101 (resp\&. -\fBGID_MIN\fR\-1)\&. -.RE -.PP -\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of system users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_UID_MIN\fR -(resp\&. -\fBSYS_UID_MAX\fR) is 101 (resp\&. -\fBUID_MIN\fR\-1)\&. -.RE -.PP -\fBUID_MAX\fR (number), \fBUID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of regular users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBUID_MIN\fR -(resp\&. -\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBUMASK\fR (number) -.RS 4 -文件模式创建掩码初始化为此值。如果没有指定,掩码初始化为 022。 -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this mask to set the mode of the home directory they create if -\fBHOME_MODE\fR -is not set\&. -.sp -It is also used by -\fBlogin\fR -to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if -\fBQUOTAS_ENAB\fR -is set) or by the specification of a limit with the -\fIK\fR -identifier in -\fBlimits\fR(5)\&. -.RE + + + + + .SH "文件" .PP /etc/passwd diff --git a/man/zh_CN/man8/nologin.8 b/man/zh_CN/man8/nologin.8 index 35ca8138..c5fa6418 100644 --- a/man/zh_CN/man8/nologin.8 +++ b/man/zh_CN/man8/nologin.8 @@ -1,13 +1,13 @@ '\" t .\" Title: nologin .\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net> -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "NOLOGIN" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "NOLOGIN" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff --git a/man/zh_CN/man8/pwck.8 b/man/zh_CN/man8/pwck.8 index aa01992f..105c0813 100644 --- a/man/zh_CN/man8/pwck.8 +++ b/man/zh_CN/man8/pwck.8 @@ -1,13 +1,13 @@ '\" t .\" Title: pwck .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "PWCK" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "PWCK" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -28,10 +28,10 @@ .\" * MAIN CONTENT STARTS HERE * .\" ----------------------------------------------------------------- .SH "名称" -pwck \- 检查密码文件的完整性 +pwck \- verify the integrity of password files .SH "大纲" .HP \w'\fBpwck\fR\ 'u -\fBpwck\fR [选项] [\fIpasswd\fR\ [\ \fIshadow\fR\ ]] +\fBpwck\fR [选项] [\fIPASSWORDFILE\fR\ [\ \fISHADOWFILE\fR\ ]] .SH "描述" .PP The @@ -110,8 +110,9 @@ have the proper format and contain valid data\&. The user is prompted to delete 有效的登录 shell .RE .PP -shadow -checks are enabled when a second file parameter is specified or when +Checks for shadowed password information are enabled when the second file parameter +\fISHADOWFILE\fR +is specified or when /etc/shadow exists on the system\&. .PP @@ -172,7 +173,7 @@ exists on the system\&. 最后一次的密码更改时间不是被设成了一个将来的时间。 .RE .PP -The checks for correct number of fields and unique user name are fatal\&. If the entry has the wrong number of fields, the user will be prompted to delete the entire line\&. If the user does not answer affirmatively, all further checks are bypassed\&. An entry with a duplicated user name is prompted for deletion, but the remaining checks will still be made\&. All other errors are warning and the user is encouraged to run the +The checks for correct number of fields and unique user name are fatal\&. If the entry has the wrong number of fields, the user will be prompted to delete the entire line\&. If the user does not answer affirmatively, all further checks are bypassed\&. An entry with a duplicated user name is prompted for deletion, but the remaining checks will still be made\&. All other errors are warnings and the user is encouraged to run the \fBusermod\fR command to correct the error\&. .PP @@ -221,7 +222,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-sort\fR @@ -248,26 +249,6 @@ parameters\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBNONEXISTENT\fR (string) -.RS 4 -If a system account intentionally does not have a home directory that exists, this string can be provided in the /etc/passwd entry for the account to indicate this\&. The result is that pwck will not emit a spurious warning for this account\&. -.RE -.PP -\fBPASS_MAX_DAYS\fR (number) -.RS 4 -一个密码可以使用的最大天数。如果密码比这旧,将会强迫更改密码。如果不指定,就假定为 \-1,这会禁用这个限制。 -.RE -.PP -\fBPASS_MIN_DAYS\fR (number) -.RS 4 -The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&. -.RE -.PP -\fBPASS_WARN_AGE\fR (number) -.RS 4 -密码过期之前给出警告的天数。0 表示只有只在过期的当天警告,负值表示不警告。如果没有指定,不会给警告。 -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/pwconv.8 b/man/zh_CN/man8/pwconv.8 index 3112e7f1..2e2d64fc 100644 --- a/man/zh_CN/man8/pwconv.8 +++ b/man/zh_CN/man8/pwconv.8 @@ -1,13 +1,13 @@ '\" t .\" Title: pwconv .\" Author: Marek Micha\(/lkiewicz -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "PWCONV" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "PWCONV" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -128,7 +128,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .SH "缺陷" .PP @@ -146,40 +146,10 @@ changes the behavior of and \fBgrpunconv\fR: .PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP The following configuration variables in /etc/login\&.defs change the behavior of \fBpwconv\fR: -.PP -\fBPASS_MAX_DAYS\fR (number) -.RS 4 -一个密码可以使用的最大天数。如果密码比这旧,将会强迫更改密码。如果不指定,就假定为 \-1,这会禁用这个限制。 -.RE -.PP -\fBPASS_MIN_DAYS\fR (number) -.RS 4 -The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&. -.RE -.PP -\fBPASS_WARN_AGE\fR (number) -.RS 4 -密码过期之前给出警告的天数。0 表示只有只在过期的当天警告,负值表示不警告。如果没有指定,不会给警告。 -.RE .SH "文件" .PP /etc/login\&.defs diff --git a/man/zh_CN/man8/sulogin.8 b/man/zh_CN/man8/sulogin.8 index 13550bbb..3097e714 100644 --- a/man/zh_CN/man8/sulogin.8 +++ b/man/zh_CN/man8/sulogin.8 @@ -1,13 +1,13 @@ '\" t .\" Title: sulogin .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "SULOGIN" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "SULOGIN" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -79,25 +79,6 @@ As complete an environment as possible is created\&. However, various devices ma The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBENV_HZ\fR (string) -.RS 4 -If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by -\fIHZ=\fR\&. A common value on Linux is -\fIHZ=100\fR\&. -.RE -.PP -\fBENV_TZ\fR (string) -.RS 4 -If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by -\fITZ=\fR -(for example -\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example -/etc/tzname)\&. -.sp -If a full path is specified but the file does not exist or cannot be read, the default is to use -\fITZ=CST6CDT\fR\&. -.RE .SH "文件" .PP /etc/passwd diff --git a/man/zh_CN/man8/useradd.8 b/man/zh_CN/man8/useradd.8 index d9a51a30..c4845c50 100644 --- a/man/zh_CN/man8/useradd.8 +++ b/man/zh_CN/man8/useradd.8 @@ -1,13 +1,13 @@ '\" t .\" Title: useradd .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "USERADD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "USERADD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -68,11 +68,7 @@ The default base directory for the system if \fB\-d\fR\ \&\fIHOME_DIR\fR is not specified\&. \fIBASE_DIR\fR -is concatenated with the account name to define the home directory\&. If the -\fB\-m\fR -option is not used, -\fIBASE_DIR\fR -must exist\&. +is concatenated with the account name to define the home directory\&. .sp If this option is not specified, \fBuseradd\fR @@ -86,7 +82,7 @@ by default\&. .PP \fB\-c\fR, \fB\-\-comment\fR\ \&\fICOMMENT\fR .RS 4 -任何字符串。通常是关于登录的简短描述,当前用于用户全名。 +Any text string\&. It is generally a short description of the account, and is currently used as the field for the user\*(Aqs full name\&. .RE .PP \fB\-d\fR, \fB\-\-home\-dir\fR\ \&\fIHOME_DIR\fR @@ -124,7 +120,8 @@ variable in .PP \fB\-f\fR, \fB\-\-inactive\fR\ \&\fIINACTIVE\fR .RS 4 -密码过期后,账户被彻底禁用之前的天数。0 表示立即禁用,\-1 表示禁用这个功能。 +defines the number of days after the password exceeded its maximum age where the user is expected to replace this password\&. The value is stored in the shadow password file\&. An input of 0 will disable an expired password with no delay\&. An input of \-1 will blank the respective field in the shadow password file\&. See +\fBshadow\fR(5)for more information\&. .sp If not specified, \fBuseradd\fR @@ -134,9 +131,20 @@ variable in /etc/default/useradd, or \-1 by default\&. .RE .PP +\fB\-F\fR, \fB\-\-add\-subids\-for\-system\fR +.RS 4 +Update +/etc/subuid +and +/etc/subgid +even when creating a system account with +\fB\-r\fR +option\&. +.RE +.PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGROUP\fR .RS 4 -用户初始登录组的组名或号码。组名必须已经存在。组号码必须指代已经存在的组。 +The name or the number of the user\*(Aqs primary group\&. The group name must exist\&. A group number must refer to an already existing group\&. .sp If not specified, the behavior of \fBuseradd\fR @@ -198,14 +206,15 @@ defaults (\fBUID_MIN\fR, \fBUMASK\fR, \fBPASS_MAX_DAYS\fR and others)\&. - +.sp Example: -\fB\-K\fR\ \&\fIPASS_MAX_DAYS\fR=\fI\-1\fR -can be used when creating system account to turn off password aging, even though system account has no password at all\&. Multiple +\fB\-K\fR\ \&\fIPASS_MAX_DAYS \fR=\fI\-1\fR +can be used when creating an account to turn off password aging\&. Multiple \fB\-K\fR options can be specified, e\&.g\&.: -\fB\-K\fR\ \&\fIUID_MIN\fR=\fI100\fR\ \& -\fB\-K\fR\ \&\fIUID_MAX\fR=\fI499\fR +\fB\-K\fR\ \&\fIUID_MIN\fR +=\fI100\fR\ \&\fB\-K\fR\ \& +\fIUID_MAX\fR=\fI499\fR .RE .PP \fB\-l\fR, \fB\-\-no\-log\-init\fR @@ -238,7 +247,7 @@ The directory where the user\*(Aqs home directory is created must exist and have .PP \fB\-M\fR, \fB\-\-no\-create\-home\fR .RS 4 -Do no create the user\*(Aqs home directory, even if the system wide setting from +Do not create the user\*(Aqs home directory, even if the system wide setting from /etc/login\&.defs (\fBCREATE_HOME\fR) is set to \fIyes\fR\&. @@ -265,20 +274,22 @@ variable in .PP \fB\-o\fR, \fB\-\-non\-unique\fR .RS 4 -允许使用重复的 UID 创建用户账户。 +allows the creation of an account with an already existing UID\&. .sp This option is only valid in combination with the \fB\-u\fR -option\&. +option\&. As a user identity serves as key to map between users on one hand and permissions, file ownerships and other aspects that determine the system\*(Aqs behavior on the other hand, more than one login name will access the account of the given UID\&. .RE .PP \fB\-p\fR, \fB\-\-password\fR\ \&\fIPASSWORD\fR .RS 4 -The encrypted password, as returned by -\fBcrypt\fR(3)\&. The default is to disable the password\&. +defines an initial password for the account\&. PASSWORD is expected to be encrypted, as returned by +\fBcrypt \fR(3)\&. Within a shell script, this option allows to create efficiently batches of users\&. +.sp +Without this option, the new account will be locked and with no password defined, i\&.e\&. a single exclamation mark in the respective field of +/etc/shadow\&. This is a state where the user won\*(Aqt be able to access the account or to define a password himself\&. .sp -\fBNote:\fR -This option is not recommended because the password (or encrypted password) will be visible by users listing the processes\&. +\fBNote:\fRAvoid this option on the command line because the password (or encrypted password) will be visible by users listing the processes\&. .sp 您应该确保密码符合系统的密码政策。 .RE @@ -304,6 +315,13 @@ will not create a home directory for such a user, regardless of the default sett (\fBCREATE_HOME\fR)\&. You have to specify the \fB\-m\fR options if you want a home directory for a system account to be created\&. +.sp +Note that this option will not update +/etc/subuid +and +/etc/subgid\&. You have to specify the +\fB\-F\fR +options if you want to update the files for a system account to be created\&. .RE .PP \fB\-R\fR, \fB\-\-root\fR\ \&\fICHROOT_DIR\fR @@ -312,24 +330,22 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR .RS 4 -Apply changes in the -\fIPREFIX_DIR\fR -directory and use the configuration files from the -\fIPREFIX_DIR\fR -directory\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. +Apply changes to configuration files under the root filesystem found under the directory +\fIPREFIX_DIR\fR\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. .RE .PP \fB\-s\fR, \fB\-\-shell\fR\ \&\fISHELL\fR .RS 4 -The name of the user\*(Aqs login shell\&. The default is to leave this field blank, which causes the system to select the default login shell specified by the +sets the path to the user\*(Aqs login shell\&. Without this option, the system will use the \fBSHELL\fR -variable in -/etc/default/useradd, or an empty string by default\&. +variable specified in +/etc/default/useradd, or, if that is as well not set, the field for the login shell in +/etc/passwdremains empty\&. .RE .PP \fB\-u\fR, \fB\-\-uid\fR\ \&\fIUID\fR @@ -363,7 +379,9 @@ variable in .PP \fB\-Z\fR, \fB\-\-selinux\-user\fR\ \&\fISEUSER\fR .RS 4 -用户登录的 SELinux 用户。默认为留空,这会造成系统选择默认的 SELinux 用户。 +defines the SELinux user for the new account\&. Without this option, a SELinux uses the default user\&. Note that the shadow system doesn\*(Aqt store the selinux\-user, it uses +\fBsemanage\fR(8) +for that\&. .RE .SS "更改默认值" .PP @@ -379,7 +397,7 @@ will update the default values for the specified options\&. Valid default\-chang .PP \fB\-b\fR, \fB\-\-base\-dir\fR\ \&\fIBASE_DIR\fR .RS 4 -The path prefix for a new user\*(Aqs home directory\&. The user\*(Aqs name will be affixed to the end of +sets the path prefix for a new user\*(Aqs home directory\&. The user\*(Aqs name will be affixed to the end of \fIBASE_DIR\fR to form the new user\*(Aqs home directory name, if the \fB\-d\fR @@ -393,7 +411,7 @@ variable in .PP \fB\-e\fR, \fB\-\-expiredate\fR\ \&\fIEXPIRE_DATE\fR .RS 4 -禁用此用户账户的日期。 +sets the date on which newly created user accounts are disabled\&. .sp This option sets the \fBEXPIRE\fR @@ -403,7 +421,8 @@ variable in .PP \fB\-f\fR, \fB\-\-inactive\fR\ \&\fIINACTIVE\fR .RS 4 -密码过期到账户被禁用之前的天数。 +defines the number of days after the password exceeded its maximum age where the user is expected to replace this password\&. See +\fBshadow\fR(5)for more information\&. .sp This option sets the \fBINACTIVE\fR @@ -413,14 +432,7 @@ variable in .PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGROUP\fR .RS 4 -The group name or ID for a new user\*(Aqs initial group (when the -\fB\-N/\-\-no\-user\-group\fR -is used or when the -\fBUSERGROUPS_ENAB\fR -variable is set to -\fIno\fR -in -/etc/login\&.defs)\&. The named group must exist, and a numerical group ID must have an existing entry\&. +sets the default primary group for newly created users, accepting group names or a numerical group ID\&. The named group must exist, and the GID must have an existing entry\&. .sp This option sets the \fBGROUP\fR @@ -430,7 +442,7 @@ variable in .PP \fB\-s\fR, \fB\-\-shell\fR\ \&\fISHELL\fR .RS 4 -新用户的登录 shell 名。 +defines the default login shell for new users\&. .sp This option sets the \fBSHELL\fR @@ -460,226 +472,6 @@ will deny the user account creation request\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBCREATE_HOME\fR (boolean) -.RS 4 -指示是否应该为新用户默认创建主目录。 -.sp -此设置并不应用到系统用户,并且可以使用命令行覆盖。 -.RE -.PP -\fBGID_MAX\fR (number), \fBGID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of regular groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBGID_MIN\fR -(resp\&. -\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBHOME_MODE\fR (number) -.RS 4 -The mode for new home directories\&. If not specified, the -\fBUMASK\fR -is used to create the mode\&. -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this to set the mode of the home directory they create\&. -.RE -.PP -\fBLASTLOG_UID_MAX\fR (number) -.RS 4 -Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&. -.sp -No -\fBLASTLOG_UID_MAX\fR -option present in the configuration means that there is no user ID limit for writing lastlog entries\&. -.RE -.PP -\fBMAIL_DIR\fR (string) -.RS 4 -The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in -/etc/default/useradd -determines whether the mail spool should be created\&. -.RE -.PP -\fBMAIL_FILE\fR (string) -.RS 4 -定义用户邮箱文件的位置(相对于主目录)。 -.RE -.PP -The -\fBMAIL_DIR\fR -and -\fBMAIL_FILE\fR -variables are used by -\fBuseradd\fR, -\fBusermod\fR, and -\fBuserdel\fR -to create, move, or delete the user\*(Aqs mail spool\&. -.PP -If -\fBMAIL_CHECK_ENAB\fR -is set to -\fIyes\fR, they are also used to define the -\fBMAIL\fR -environment variable\&. -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBPASS_MAX_DAYS\fR (number) -.RS 4 -一个密码可以使用的最大天数。如果密码比这旧,将会强迫更改密码。如果不指定,就假定为 \-1,这会禁用这个限制。 -.RE -.PP -\fBPASS_MIN_DAYS\fR (number) -.RS 4 -The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&. -.RE -.PP -\fBPASS_WARN_AGE\fR (number) -.RS 4 -密码过期之前给出警告的天数。0 表示只有只在过期的当天警告,负值表示不警告。如果没有指定,不会给警告。 -.RE -.PP -\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate group IDs) allocate -\fBSUB_GID_COUNT\fR -unused group IDs from the range -\fBSUB_GID_MIN\fR -to -\fBSUB_GID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_GID_MIN\fR, -\fBSUB_GID_MAX\fR, -\fBSUB_GID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate user IDs) allocate -\fBSUB_UID_COUNT\fR -unused user IDs from the range -\fBSUB_UID_MIN\fR -to -\fBSUB_UID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_UID_MIN\fR, -\fBSUB_UID_MAX\fR, -\fBSUB_UID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number) -.RS 4 -Range of group IDs used for the creation of system groups by -\fBuseradd\fR, -\fBgroupadd\fR, or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_GID_MIN\fR -(resp\&. -\fBSYS_GID_MAX\fR) is 101 (resp\&. -\fBGID_MIN\fR\-1)\&. -.RE -.PP -\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of system users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBSYS_UID_MIN\fR -(resp\&. -\fBSYS_UID_MAX\fR) is 101 (resp\&. -\fBUID_MIN\fR\-1)\&. -.RE -.PP -\fBUID_MAX\fR (number), \fBUID_MIN\fR (number) -.RS 4 -Range of user IDs used for the creation of regular users by -\fBuseradd\fR -or -\fBnewusers\fR\&. -.sp -The default value for -\fBUID_MIN\fR -(resp\&. -\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&. -.RE -.PP -\fBUMASK\fR (number) -.RS 4 -文件模式创建掩码初始化为此值。如果没有指定,掩码初始化为 022。 -.sp -\fBuseradd\fR -and -\fBnewusers\fR -use this mask to set the mode of the home directory they create if -\fBHOME_MODE\fR -is not set\&. -.sp -It is also used by -\fBlogin\fR -to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if -\fBQUOTAS_ENAB\fR -is set) or by the specification of a limit with the -\fIK\fR -identifier in -\fBlimits\fR(5)\&. -.RE -.PP -\fBUSERGROUPS_ENAB\fR (boolean) -.RS 4 -如果 uid 和 gid 相同,用户名和主用户名也相同,使非 root 组的组掩码位和属主位相同 (如:022 \-> 002, 077 \-> 007)。 -.sp -If set to -\fIyes\fR, -\fBuserdel\fR -will remove the user\*(Aqs group if it contains no more members, and -\fBuseradd\fR -will create by default a group with the name of the user\&. -.RE .SH "文件" .PP /etc/passwd @@ -779,7 +571,7 @@ specified group doesn\*(Aqt exist .PP \fI9\fR .RS 4 -username already in use +username or group name already in use .RE .PP \fI10\fR diff --git a/man/zh_CN/man8/userdel.8 b/man/zh_CN/man8/userdel.8 index 3606bb39..cc69ba65 100644 --- a/man/zh_CN/man8/userdel.8 +++ b/man/zh_CN/man8/userdel.8 @@ -1,13 +1,13 @@ '\" t .\" Title: userdel .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "USERDEL" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "USERDEL" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -82,7 +82,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR @@ -103,104 +103,6 @@ directory\&. This option does not chroot and is intended for preparing a cross\- The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBMAIL_DIR\fR (string) -.RS 4 -The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in -/etc/default/useradd -determines whether the mail spool should be created\&. -.RE -.PP -\fBMAIL_FILE\fR (string) -.RS 4 -定义用户邮箱文件的位置(相对于主目录)。 -.RE -.PP -The -\fBMAIL_DIR\fR -and -\fBMAIL_FILE\fR -variables are used by -\fBuseradd\fR, -\fBusermod\fR, and -\fBuserdel\fR -to create, move, or delete the user\*(Aqs mail spool\&. -.PP -If -\fBMAIL_CHECK_ENAB\fR -is set to -\fIyes\fR, they are also used to define the -\fBMAIL\fR -environment variable\&. -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBUSERDEL_CMD\fR (string) -.RS 4 -如果定义了,这是删除账户时执行的命令。它应该移除所有属于此用户的的 at/cron/print 等作业(作为第一个参数传递)。 -.sp -这个脚本的返回值并不被带到账户中去。 -.sp -Here is an example script, which removes the user\*(Aqs cron, at and print jobs: -.sp -.if n \{\ -.RS 4 -.\} -.nf -#! /bin/sh - -# Check for the required argument\&. -if [ $# != 1 ]; then - echo "Usage: $0 username" - exit 1 -fi - -# Remove cron jobs\&. -crontab \-r \-u $1 - -# Remove at jobs\&. -# Note that it will remove any jobs owned by the same UID, -# even if it was shared by a different username\&. -AT_SPOOL_DIR=/var/spool/cron/atjobs -find $AT_SPOOL_DIR \-name "[^\&.]*" \-type f \-user $1 \-delete \e; - -# Remove print jobs\&. -lprm $1 - -# All done\&. -exit 0 - -.fi -.if n \{\ -.RE -.\} -.sp -.RE -.PP -\fBUSERGROUPS_ENAB\fR (boolean) -.RS 4 -如果 uid 和 gid 相同,用户名和主用户名也相同,使非 root 组的组掩码位和属主位相同 (如:022 \-> 002, 077 \-> 007)。 -.sp -If set to -\fIyes\fR, -\fBuserdel\fR -will remove the user\*(Aqs group if it contains no more members, and -\fBuseradd\fR -will create by default a group with the name of the user\&. -.RE .SH "文件" .PP /etc/group diff --git a/man/zh_CN/man8/usermod.8 b/man/zh_CN/man8/usermod.8 index 4b0b6a2a..44f29a4f 100644 --- a/man/zh_CN/man8/usermod.8 +++ b/man/zh_CN/man8/usermod.8 @@ -1,13 +1,13 @@ '\" t .\" Title: usermod .\" Author: Julianne Frances Haugh -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "USERMOD" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "USERMOD" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -36,7 +36,7 @@ usermod \- 修改一个用户账户 .PP The \fBusermod\fR -command modifies the system account files to reflect the changes that are specified on the command line\&. +command modifies the system account files\&. .SH "选项" .PP The options which apply to the @@ -50,14 +50,15 @@ Add the user to the supplementary group(s)\&. Use only with the option\&. .RE .PP -\fB\-b\fR, \fB\-\-badnames\fR +\fB\-b\fR, \fB\-\-badname\fR .RS 4 Allow names that do not conform to standards\&. .RE .PP \fB\-c\fR, \fB\-\-comment\fR\ \&\fICOMMENT\fR .RS 4 -The new value of the user\*(Aqs password file comment field\&. It is normally modified using the +update the comment field of the user in +/etc/passwd, which is normally modified using the \fBchfn\fR(1) utility\&. .RE @@ -74,11 +75,9 @@ option is given, the contents of the current home directory will be moved to the \fB\-e\fR, \fB\-\-expiredate\fR\ \&\fIEXPIRE_DATE\fR .RS 4 The date on which the user account will be disabled\&. The date is specified in the format -\fIYYYY\-MM\-DD\fR\&. +\fIYYYY\-MM\-DD\fR\&. Integers as input are interpreted as days after 1970\-01\-01\&. .sp -An empty -\fIEXPIRE_DATE\fR -argument will disable the expiration of the account\&. +An input of \-1 or an empty string will blank the account expiration field in the shadow password file\&. The account will remain available with no date limit\&. .sp This option requires a /etc/shadow @@ -89,9 +88,9 @@ entry will be created if there were none\&. .PP \fB\-f\fR, \fB\-\-inactive\fR\ \&\fIINACTIVE\fR .RS 4 -密码过期之后,账户被彻底禁用之前的天数。 -.sp -0 表示密码过期时,立即禁用账户;\-1 表示不使用这个功能。 +defines the number of days after the password exceeded its maximum age during which the user may still login by immediately replacing the password\&. This grace period before the account becomes inactive is stored in the shadow password file\&. An input of 0 will disable an expired password with no delay\&. An input of \-1 will blank the respective field in the shadow password file\&. See +\fBshadow\fR(5) +for more information\&. .sp This option requires a /etc/shadow @@ -102,7 +101,7 @@ entry will be created if there were none\&. .PP \fB\-g\fR, \fB\-\-gid\fR\ \&\fIGROUP\fR .RS 4 -用户的新初始登录组的组名或数字代号。此组必须存在。 +The name or numerical ID of the user\*(Aqs new primary group\&. The group must exist\&. .sp 用户主目录中,属于原来的主组的文件将转交新组所有。 .sp @@ -114,9 +113,7 @@ The change of the group ownership of files inside of the user\*(Aqs home directo .PP \fB\-G\fR, \fB\-\-groups\fR\ \&\fIGROUP1\fR[\fI,GROUP2,\&.\&.\&.\fR[\fI,GROUPN\fR]]] .RS 4 -A list of supplementary groups which the user is also a member of\&. Each group is separated from the next by a comma, with no intervening whitespace\&. The groups are subject to the same restrictions as the group given with the -\fB\-g\fR -option\&. +A list of supplementary groups which the user is also a member of\&. Each group is separated from the next by a comma, with no intervening whitespace\&. The groups must exist\&. .sp If the user is currently a member of a group which is not listed, the user will be removed from the group\&. This behaviour can be changed via the \fB\-a\fR @@ -146,7 +143,7 @@ to .PP \fB\-m\fR, \fB\-\-move\-home\fR .RS 4 -Move the content of the user\*(Aqs home directory to the new location\&. If the current home directory does not exist the new home directory will not be created\&. +moves the content of the user\*(Aqs home directory to the new location\&. If the current home directory does not exist the new home directory will not be created\&. .sp This option is only valid in combination with the \fB\-d\fR @@ -159,18 +156,20 @@ will try to adapt the ownership of the files and to copy the modes, ACL and exte .PP \fB\-o\fR, \fB\-\-non\-unique\fR .RS 4 -When used with the +allows to change the user ID to a non\-unique value\&. +.sp +This option is only valid in combination with the \fB\-u\fR -option, this option allows to change the user ID to a non\-unique value\&. +option\&. As a user identity serves as key to map between users on one hand and permissions, file ownerships and other aspects that determine the system\*(Aqs behavior on the other hand, more than one login name will access the account of the given UID\&. .RE .PP \fB\-p\fR, \fB\-\-password\fR\ \&\fIPASSWORD\fR .RS 4 -The encrypted password, as returned by -\fBcrypt\fR(3)\&. +defines a new password for the user\&. PASSWORD is expected to be encrypted, as returned by +\fBcrypt \fR(3)\&. .sp \fBNote:\fR -This option is not recommended because the password (or encrypted password) will be visible by users listing the processes\&. +Avoid this option on the command line because the password (or encrypted password) will be visible by users listing the processes\&. .sp 您应该确保密码符合系统的密码政策。 .RE @@ -188,26 +187,26 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-P\fR, \fB\-\-prefix\fR\ \&\fIPREFIX_DIR\fR .RS 4 -Apply changes in the +Apply changes within the directory tree starting with \fIPREFIX_DIR\fR -directory and use the configuration files from the -\fIPREFIX_DIR\fR -directory\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. +and use as well the configuration files located there\&. This option does not chroot and is intended for preparing a cross\-compilation target\&. Some limitations: NIS and LDAP users/groups are not verified\&. PAM authentication is using the host files\&. No SELINUX support\&. .RE .PP \fB\-s\fR, \fB\-\-shell\fR\ \&\fISHELL\fR .RS 4 -The path of the user\*(Aqs new login shell\&. Setting this field to blank causes the system to select the default login shell\&. +changes the user\*(Aqs login shell\&. An empty string for SHELL blanks the field in +/etc/passwd +and logs the user into the system\*(Aqs default shell\&. .RE .PP \fB\-u\fR, \fB\-\-uid\fR\ \&\fIUID\fR .RS 4 -用户 ID 的新数值。 +The new value of the user\*(Aqs ID\&. .sp This value must be unique, unless the \fB\-o\fR @@ -249,7 +248,7 @@ value from .RS 4 Add a range of subordinate uids to the user\*(Aqs account\&. .sp -This option may be specified multiple times to add multiple ranges to a users account\&. +This option may be specified multiple times to add multiple ranges to a user\*(Aqs account\&. .sp No checks will be performed with regard to \fBSUB_UID_MIN\fR, @@ -262,7 +261,7 @@ from /etc/login\&.defs\&. .RS 4 Remove a range of subordinate uids from the user\*(Aqs account\&. .sp -This option may be specified multiple times to remove multiple ranges to a users account\&. When both +This option may be specified multiple times to remove multiple ranges to a user\*(Aqs account\&. When both \fB\-\-del\-subuids\fR and \fB\-\-add\-subuids\fR @@ -279,7 +278,7 @@ from /etc/login\&.defs\&. .RS 4 Add a range of subordinate gids to the user\*(Aqs account\&. .sp -This option may be specified multiple times to add multiple ranges to a users account\&. +This option may be specified multiple times to add multiple ranges to a user\*(Aqs account\&. .sp No checks will be performed with regard to \fBSUB_GID_MIN\fR, @@ -292,7 +291,7 @@ from /etc/login\&.defs\&. .RS 4 Remove a range of subordinate gids from the user\*(Aqs account\&. .sp -This option may be specified multiple times to remove multiple ranges to a users account\&. When both +This option may be specified multiple times to remove multiple ranges to a user\*(Aqs account\&. When both \fB\-\-del\-subgids\fR and \fB\-\-add\-subgids\fR @@ -307,19 +306,14 @@ from /etc/login\&.defs\&. .PP \fB\-Z\fR, \fB\-\-selinux\-user\fR\ \&\fISEUSER\fR .RS 4 -用户登录的 SELinux 用户。 -.sp -A blank -\fISEUSER\fR -will remove the SELinux user mapping for user -\fILOGIN\fR -(if any)\&. +defines the SELinux user to be mapped with +\fILOGIN\fR\&. An empty string ("") will remove the respective entry (if any)\&. Note that the shadow system doesn\*(Aqt store the selinux\-user, it uses semanage(8) for that\&. .RE .SH "CAVEATS" .PP You must make certain that the named user is not executing any processes when this command is being executed if the user\*(Aqs numerical user ID, the user\*(Aqs name, or the user\*(Aqs home directory is being changed\&. \fBusermod\fR -checks this on Linux\&. On other platforms it only uses utmp to check if the user is logged in\&. +checks this on Linux\&. On other operating systems it only uses utmp to check if the user is logged in\&. .PP You must change the owner of any \fBcrontab\fR @@ -333,140 +327,41 @@ jobs manually\&. The following configuration variables in /etc/login\&.defs change the behavior of this tool: -.PP -\fBLASTLOG_UID_MAX\fR (number) -.RS 4 -Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&. -.sp -No -\fBLASTLOG_UID_MAX\fR -option present in the configuration means that there is no user ID limit for writing lastlog entries\&. -.RE -.PP -\fBMAIL_DIR\fR (string) -.RS 4 -The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in -/etc/default/useradd -determines whether the mail spool should be created\&. -.RE -.PP -\fBMAIL_FILE\fR (string) -.RS 4 -定义用户邮箱文件的位置(相对于主目录)。 -.RE -.PP -The -\fBMAIL_DIR\fR -and -\fBMAIL_FILE\fR -variables are used by -\fBuseradd\fR, -\fBusermod\fR, and -\fBuserdel\fR -to create, move, or delete the user\*(Aqs mail spool\&. -.PP -If -\fBMAIL_CHECK_ENAB\fR -is set to -\fIyes\fR, they are also used to define the -\fBMAIL\fR -environment variable\&. -.PP -\fBMAX_MEMBERS_PER_GROUP\fR (number) -.RS 4 -Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in -/etc/group -(with the same name, same password, and same GID)\&. -.sp -默认值是 0,意味着组中的成员数没有限制。 -.sp -此功能(分割组)允许限制组文件中的行长度。这对于确保 NIS 组的行比长于 1024 字符。 -.sp -如果要强制这个限制,可以使用 25。 -.sp -注意:分割组可能不受所有工具的支持(甚至在 Shadow 工具集中)。您不应该使用这个变量,除非真的需要。 -.RE -.PP -\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate group IDs) allocate -\fBSUB_GID_COUNT\fR -unused group IDs from the range -\fBSUB_GID_MIN\fR -to -\fBSUB_GID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_GID_MIN\fR, -\fBSUB_GID_MAX\fR, -\fBSUB_GID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE -.PP -\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number) -.RS 4 -If -/etc/subuid -exists, the commands -\fBuseradd\fR -and -\fBnewusers\fR -(unless the user already have subordinate user IDs) allocate -\fBSUB_UID_COUNT\fR -unused user IDs from the range -\fBSUB_UID_MIN\fR -to -\fBSUB_UID_MAX\fR -for each new user\&. -.sp -The default values for -\fBSUB_UID_MIN\fR, -\fBSUB_UID_MAX\fR, -\fBSUB_UID_COUNT\fR -are respectively 100000, 600100000 and 65536\&. -.RE .SH "文件" .PP /etc/group .RS 4 -组账户信息。 +Group account information .RE .PP /etc/gshadow .RS 4 -安全组账户信息。 +Secure group account informatio\&. .RE .PP /etc/login\&.defs .RS 4 -Shadow 密码套件配置。 +Shadow password suite configuration .RE .PP /etc/passwd .RS 4 -用户账户信息。 +User account information .RE .PP /etc/shadow .RS 4 -安全用户账户信息。 +Secure user account information .RE .PP /etc/subgid .RS 4 -Per user subordinate group IDs\&. +Per user subordinate group IDs .RE .PP /etc/subuid .RS 4 -Per user subordinate user IDs\&. +Per user subordinate user IDs .RE .SH "参见" .PP diff --git a/man/zh_CN/man8/vipw.8 b/man/zh_CN/man8/vipw.8 index d091f108..8660cdff 100644 --- a/man/zh_CN/man8/vipw.8 +++ b/man/zh_CN/man8/vipw.8 @@ -1,13 +1,13 @@ '\" t .\" Title: vipw .\" Author: Marek Micha\(/lkiewicz -.\" Generator: DocBook XSL Stylesheets v1.79.1 <http://docbook.sf.net/> -.\" Date: 2022-01-02 +.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/> +.\" Date: 2022-08-18 .\" Manual: 系统管理命令 -.\" Source: shadow-utils 4.11.1 +.\" Source: shadow-utils 4.12.2 .\" Language: Chinese Simplified .\" -.TH "VIPW" "8" "2022-01-02" "shadow\-utils 4\&.11\&.1" "系统管理命令" +.TH "VIPW" "8" "2022-08-18" "shadow\-utils 4\&.12\&.2" "系统管理命令" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- @@ -86,7 +86,7 @@ Apply changes in the \fICHROOT_DIR\fR directory and use the configuration files from the \fICHROOT_DIR\fR -directory\&. +directory\&. Only absolute paths are supported\&. .RE .PP \fB\-s\fR, \fB\-\-shadow\fR |